[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: Is our revprop auth policy too strict?

From: Garance A Drosihn <drosih_at_rpi.edu>
Date: 2007-05-21 20:57:01 CEST

At 2:18 PM -0400 5/21/07, C. Michael Pilato wrote:
>Garance A Drosihn wrote:
>> At 6:05 AM -0400 5/21/07, Michael Sinz wrote:
>>>
>>> I wonder if this is correct. Just because you can see part of the commit
>>> information, does that mean it is safe or correct to be able to change
>>> it?
>>> Given that the user can not access all of the commit information, I would
>>> think it is improper to allow changes to even those values that can be
>>> seen.
>>> After all, it may be very incorrect.
>>
>> As I understand it, the debate is what behavior subversion should allow
>> by default. I think it makes the most sense to leave the default as it
>> is, because the owner of any repository can provide wider access if they
>> believe that is appropriate.
>
>That's not as true as you might like to think.
>
>With the current behavior, the way an owner of a repository provides wider
>access to a user's ability to tweak, say, the svn:date property, would be to
>grant him/her read access to all the paths changed in the revision. If
>you're scratching your head and wondering, "Why in the world would the admin
>have to grant path access just to let someone change a revision property?",
>then you're at the same place my head is. (Welcome. Nice to have you.) :-)

Hmm. I'm probably missing some detail here. I've setup some repos
so a specific account change change svn:date properties, but that
account already had write access to the entire repo, so I probably
haven't run into the issue that's being discussed here.

It did seem like I was missing a message or two in this thread, but I
thought I had a pretty good idea of what the question was based on the
others. But it sounds like I ended up a bit off-track. Sorry about
that! 

-- 
Garance Alistair Drosehn            =   gad@gilead.netel.rpi.edu
Senior Systems Programmer           or  gad@freebsd.org
Rensselaer Polytechnic Institute    or  drosih@rpi.edu
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Mon May 21 20:57:17 2007

This is an archived mail posted to the Subversion Dev mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.